{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:5f411aef-ab61-59c3-96ba-c17e14c2e5bd", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1", "type": "library", "group": "org.apache.cxf.services.wsn", "name": "cxf-services-wsn-osgi", "version": "3.5.11-tuxcare.1", "purl": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:3116c034-514c-5160-98db-e0fcb0c838f1", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a9f405e3-bdc2-5dcd-a48a-c12b854f245a", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3a1911a2-e1ca-5605-91ff-c5c59fba3f92", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0ac974c7-e6c6-5ef9-b0fc-139e80e59451", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93f65621-b29d-5d91-a57e-64a870e17d71", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:152d5a63-7e40-5397-aebd-9ff739add9f1", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1c00d7ea-0e83-5d48-9bf7-5ba3cd0d9696", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a8ce0241-6823-5f34-ba4f-60b665ab1953", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4212dba7-93ae-596c-83dd-7a7489a83069", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c23d5634-852e-59ed-bcb0-fccfe23adb02", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:927013d2-b7b4-5f1d-9431-56a0bc9b2c73", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3e5c340d-c8f9-574d-9179-f7dd49226b11", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:70f3b211-103b-5437-9277-d6dff918d041", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:8e55bdc1-cb3a-5122-abd5-0c4c68b556f7", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b921a58f-f430-52df-8982-d377ed35508d", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:93f18cf8-3c5d-5f19-b53d-c5dbf1ae9325", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:80e958ae-43cc-54b4-8886-b1e2edba8326", "id": "CVE-2014-0119", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0119 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:30aa1266-9a48-594e-8b93-80d835078a60", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:9d71417d-cd5e-55a9-83d8-452a7606c708", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:bb906164-8d7b-5d19-b141-bbaa5a24eee4", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:c0a89d43-3466-5fd1-b6e3-582d7565fd2d", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:127970d9-51c4-5095-8fc8-526ffa9625fc", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:89a9edbb-b9ac-599a-9d98-64c734e67a1c", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:aa25313e-f4bc-5ee9-96d1-6eca1857bc1e", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a55ffc62-2a71-56da-84a4-b243e757148f", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:0c5dcc2b-e82e-5f26-b4ef-f3289408d473", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-osgi 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:f69bf930-d8db-5792-a0ca-bb2539a8d336", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1dbcba64-e555-51ee-ac14-991128ec9a7e", "id": "CVE-2022-22932", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2022-22932 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-osgi 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:a3206019-a700-562a-8733-74c007a898be", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b258f8b1-1464-5928-8c57-e26d3669c748", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf.services.wsn:cxf-services-wsn-osgi 3.5.11-tuxcare.1." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:b946b445-a652-5ea1-a50a-b91f13fe2cbe", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1f994982-0676-549d-8611-78671f5bb33c", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.11-tuxcare.1 of org.apache.cxf.services.wsn:cxf-services-wsn-osgi." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf.services.wsn/cxf-services-wsn-osgi@3.5.11-tuxcare.1" } ] }